Novel dropper leveraged for Gh0st RAT deployment

30 July 2024

Threat actors have leveraged the new Gh0stGambit dropper to distribute the Gh0st RAT malware in drive-by download attacks against Chinese Windows users, The Hacker News reports. Malicious Google Chrome-spoofing installer packages hosted on a fraudulent Chrome website facilitated the deployment of a legitimate Chrome setup executable and a trojanized installer that loads Gh0stGambit, which then verifies active security software before fetching Gh0st RAT, an eSentire analysis revealed.

Source: SC Magazine

Date:

30 July 2024

Categorie(s):

NEWS

Tag(s):

IT, Network Security, News, Novel, RAT

Bloke behind Helix Bitcoin launderette jailed for three years, hands over $400M16 November 2024
Letting chatbots run robots ends as badly as you’d expect16 November 2024
ANZ CIO Challenges: AI, Cybersecurity & Data Analytics for 202515 November 2024
Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit15 November 2024
Drinking water systems for 26M Americans face high cybersecurity risks15 November 2024